Browse all 8 CVE security advisories affecting GNU Project. AI-powered Chinese analysis, POCs, and references for each vulnerability.
The GNU Project develops free software operating system components with a core use case of providing open-source alternatives to proprietary systems. Historically, common vulnerabilities include remote code execution, cross-site scripting, and privilege escalation, often stemming from memory management flaws and insufficient input validation. While no major security incidents have been widely documented, the project maintains a transparent approach to vulnerability disclosure. With 8 CVEs currently on record, most issues are promptly addressed through community collaboration. The project's emphasis on code review and regular updates contributes to its relatively stable security posture, though like any large software ecosystem, it remains susceptible to emerging threats.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-62689 | GNU libmicrohttpd 安全漏洞 — GNU libbmicrohttpdCWE-122 | 7.5 | - | 2025-11-10 |
| CVE-2025-59777 | GNU libmicrohttpd 代码问题漏洞 — GNU libbmicrohttpdCWE-476 | 7.5 | - | 2025-11-10 |
| CVE-2022-28736 | There's a use-after-free vulnerability in grub_cmd_chainloader() function — GNU GRUB | 6.4 | Medium | 2023-07-20 |
| CVE-2022-28735 | grub2 数据伪造问题漏洞 — GNU GRUB | 6.7 | Medium | 2023-07-20 |
| CVE-2022-28734 | Out-of-bounds write when handling split HTTP headers — GNU GRUB | 8.1 | High | 2023-07-20 |
| CVE-2022-28733 | Integer underflow in grub_net_recv_ip4_packets — GNU GRUBCWE-191 | 8.1 | High | 2023-07-20 |
| CVE-2017-13089 | GNU Wget: stack overflow in HTTP protocol handling — WgetCWE-121 | 8.8 | - | 2017-10-27 |
| CVE-2017-13090 | GNU Wget: heap overflow in HTTP protocol handling — WgetCWE-122 | 9.8 | - | 2017-10-27 |
This page lists every published CVE security advisory associated with GNU Project. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.